This job is no longer available.
You can view related vacancies or set-up an email alert notification when similar jobs are added to the website using the buttons below.

Information Security Manager

Infoman_1547633258
£60000 - £70000 per annum

Managing this Role

image

Jake Taylor

Associate Consultant - Cyber Specialist 0207 759 7878

A keen sportsman and captain of his local rugby team in Essex, Jake is naturally adept at spotting top performers. With a specific candidate pool from professional services, Jake sources the best cyber security talent for Magic Circle, Silver Circle and top 100 UK law firms.

 

Roles recruited: SOC analysts, cyber security analysts/consultants and InfoSec

Seniority: Mid-level

Job Type: Permanent

Geographical coverage: London

Market: Cyber security operations within the legal sector

Information Security Manager

We are working with a Silver Circle law firm that are building out their Information Security team in London. They have recently just been accredited with ISO 27001 and Cyber Essentials, so this Manager who reports to the Director of GRC will play a vital part in the continuous improvement of their ISMS; in order to keep the status.

The candidate will manage Risk Treatment Plans and maintain Plan of Actions and Milestones for those risks; and will assist in the management and delivery of projects across a wide spectrum of initiatives.

Key Responsibilities:

  • Oversee, evaluate, and support the documentation, validation and assessment of Information Security Management System processes necessary to assure that existing and new information and information processing systems meet the organization's cybersecurity and risk requirements
  • Ensure appropriate treatment of risk, compliance, and assurance from internal and external perspectives
  • Conduct comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information and information processing systems, assisting the security engineering team to prioritise corrective actions
  • Build strong relationships within the organisation to support and enhance a high performing collaborative approach to achieve departmental goals
  • Manage the agenda of the Information Security Steering Committee
  • Manage the internal audit plan leading to ISO 27001 re-certification
  • Lead, coordinate, communicate, integrate, and be accountable for the overall success of the risk management program, ensuring alignment with agency or enterprise priorities

Essential Knowledge and Skills:

  • Demonstrable knowledge and previous work experience of risk management processes (e.g., methods for assessing and mitigating risk)
  • Demonstrable knowledge and previous work experience of ISO 27000 family of standards
  • Knowledge of laws, regulations, policies, and ethics as they relate to cybersecurity and privacy
  • Proficiency in developing and applying ISO 27001 standards in a critical infrastructure operational environment
  • Ability to communicate complex information, concepts, or ideas in a confident and well organized manner through verbal, written, and/or visual means

Desirable Knowledge and Skills:

  • Knowledge of NIST family of standards
  • Knowledge of applicable business processes and operations of customer organizations
  • Knowledge of specific operational impacts of cybersecurity lapses
  • Working understanding of applying ISO 27001 controls in a satellite communications operational environment
  • Formal education or qualifications in Information Security preferred (e.g. CISSP)
  • ISO 27001 Certified Lead Auditor
  • ISO 27001 Certified Lead Implementer

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.


This job has now been filled but you may be interested in:

 

IAM Specialist

Do you want to join an award winning FinTech team that is challenging the way the world pays!? We are looking for an IAM Specialist/Developer who is proficient in using Java Script.

Our client has an important mission to change and connect the world. They value their teams and the tens of thousands of people that work for them by striving to make every effort to accommodate for every individuals needs.

The Role

  • You'll work with and take direction from IAM Security Architects to help achieve the goals of the Security Architecture and IAM Programs.
  • Design and will assist with the implementation and optimization of Identity and Access Management solutions for systems and infrastructure used by internal staff.
  • Review and evaluate solutions for enterprise and business use.
  • You'll be working on an array of technologies that may include:
  • Web Access Management using standard solutions such as CA SSO/SiteMinder, Oracle Access Manager, ForgeRock, etc.
  • Single Sign-on and Federation using standard protocols and frameworks such as Kerberos, SPNEGO, SAML 2.0, ADFS, OpenID Connect, etc.
  • Privileged Access Management using solutions such as CA PAM/Xceedium Gatekeeper, BeyondTrust PowerBroker, Dell Privilege Manager, Managed sudo, etc.
  • Two-Factor Authentication
  • Familiar with modern deployment - Docker, Mesos
  • Strong technical competency and experience in the IAM domain
  • Gained good experience as a solid hands-on programmer/developer with specialization in Java and J2EE. Bean Shell, knowledge of SailPoint Java Objects exposed through application
  • Gained solid experience in developing and customising any of the IAM solutions such as Sailpoint IIQ, OIM, TIM, Forgerock, etc...
  • Strong experience in IT Security/IAM and thereby able to demonstrate a high level of technical ability in implementation and design of the IAM solutions
  • Database: SQL (Strong SQL Skills)
  • Experience with LDAP and AD
  • Experience with Unix Systems (Solaris, AIX, Linux)
  • Experience with web technologies: XML, SPML, SOAP, REST, HTML, Web and Application Servers.

If you want to be apart of a team who can fund and develop your ideas and provide you with industry recognised training then apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.

Senior Security Architect

Are you looking for a position of importance? My client is looking for a Senior Security Architect to help provide resilience across their Cyber teams to ensure they maintain operational capability in the current security landscape.

This role you will be reporting to the Director of Security Architecture and Engineering and you will be responsible for the growth and management of my client's architecture enterprise. You will use your expertise to help support the Architecture goals of the business.

The Role

  • You will work in close proximity to other security teams to help establish system boundaries and weaknesses, current or potential risks and their impact.
  • Ensure principles that support the current life Cycle
  • Support the development of risk management processes and program protection planning
  • Implement service management concepts for networks and related
  • Apply the methods, standards, and approaches for describing, analyzing, and documenting an organization's enterprise information technology
  • Develop and apply cyber security, privacy principles, and organizational requirements.
  • Develop cross domain solutions for multi-level security systems that support confidentiality, integrity, and availability requirements.
  • Collaborate in the development of cloud service models and effectively communicate possible limitations for an incident response Network Security
  • Apply network security architecture concepts including topology, protocols, components, and principles
  • Collaborate with the appropriate entities to determine how a security system should work and how changes in conditions, operations, or the environment will affect these outcomes
  • Assist in the development of network design processes, to include communication of security objectives, with consideration to operational objectives, and trade-offs.
  • Perform capabilities and requirements analysis.
  • Develop information security rules and enterprise security requirements that describe baseline and target architectures.
  • Translate operational requirements into protection needs
  • Determine and communicate cyber threats and vulnerabilities, and any operational impacts of cyber security lapses
  • Implement vulnerability assessment tools
  • Apply Personally Identifiable Information data security standards in accordance with laws, regulations, policies, and ethics as they relate to cyber security and privacy.

This is a unique opportunity to be apart of a global organisation and help implement changes that will secure the future of not only the Architecture team but of the entire enterprise. If this sounds like you apply now!

Huntress Search Ltd does not discriminate on the grounds of 'protected characteristics' as defined under the Equality Act and other relevant UK legislation.

Huntress Search Ltd acts as a Recruitment Agency in relation to all Permanent roles and as a Recruitment Business in relation to all Temporary roles.

PLEASE NOTE: We can only consider applications from candidates who have the right to work in the UK.